Git Product home page Git Product logo

myxzjie / cms Goto Github PK

View Code? Open in Web Editor NEW
248.0 14.0 111.0 59.54 MB

1.cms 网站 ,完整开源建站平台。cms网站,拥有微信公众号模块,可以加入微信公众号使用。用于咨询网站、企业网网站,个人小网站等等。可以自己开发模板放在template目录文件夹下。也适合二次开发,完整的权限系统。2.使用技术spring4 +freemarker+ shrio + ehcache + mybatis + MYSQL + H-ui.admin + Amaze UI,可以在Tomcat,jetty跑。3.环境要求:maven 版本3.3.9+,JDK1.7+(推荐1.8),mysql5.6+

License: Apache License 2.0

Java 98.20% Batchfile 0.09% PLpgSQL 1.60% Shell 0.05% Dockerfile 0.06%

cms's Introduction

cms网站地址

地址:http://www.dev56.com/

地址:http://cms-admin.dev56.com/

账号密码: admin/123qwe

docker一键部署体验cms网站

  • docker-compose up -d

关注公众号获得后台管理前端源码

  • 关注公众号回复【cms-admin】
  • 有问题关注公众号,发送问题信息,客服会第一时间回复你
  • 目前前端源码需要付费,关注公众号咨询

输入图片说明

友情链接,有需要可以联系我。^_^

好酒仓小程序

https://gitee.com/xzjie/et-shop-uni-app.git

https://github.com/myxzjie/et-shop-uni-app.git

输入图片说明

有需要,可以联系我。

问题反馈

大家如果在使用过程有什么问题,欢迎通过 issues与我们交流!

如果本项目对您有所帮助或者启发,请给个 Star 吧,您的鼓励是我最大对动力...

QQ群(一):203498970(满)、QQ群(二):397088394

QQ: 513961835

有需要定制,随时欢迎……^_^

使用技术框架

Name Version
java jdk 1.8+
spring boot 2.4.0
spring security 2.4.0
quartz 2.3.2
jpa 2.4.0
mysql 8.0.x
redis 6.0.x
minio -
aliyun oss -
vue 2.6.x
element-ui -
docker -

后台功能截图:

  • 想要体验功能,可以通过以上方式联系.

登录

首页

内容管理

登录

登录

登录

登录

登录

登录

登录

登录

登录

登录

4.MYSQL数据模型:

数据模型

cms's People

Contributors

fenglove avatar myxzjie avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

fenglove wangyx0055 7omsxx frankiegu vokie123456 dwjmark kaizhaocode yhpdev space0time kuan-li dewey00 qiu1518977696 fmy0809 danchaobing admindzl xchenb wenbinnie 91hongmi ibole xalison haloer111 cnbillow z1125096 qq1588518 luohonghui7 lishunhong lnsmallsix wenhaoai tellerattack lwgboy yunchuan537 lstarby sijishenqiu cwbjyy ifengkou sixtreehall wang1995 wangpanchn shisanchanggong idtek qiweizhu weiboooo chensh268 coder-xiaoqi detan justinyx long-kyle itapril wlybq 1621740748 yvanme pronebel chermony naivezhou lhongjum chenkechao hnjame raoyou1014 guojiayinuoqianjin lsicbc akame111111 gongdear isaac315 zhonglh ycsky98 douit wangscript007 liumingli1 missaouib 923325596 asmallprogramingmouse liujing1995 cgb-cms herbertdon qiujianquan williamsminchen hulm speditqa xywzzj irocky1 heyange2002 liusongshan wangdpwin metatronfamily 1159109522-yxm zss185865417 2003wxc lihumzsan danielzhou888 2018wl xjx79 coolhao666 vvangcong acovdu int2ecall tomman2012 fushijing snowflake3721 himozhang vnapnic

cms's Issues

open redirect vulnerability exist on OauthController

There is no check on the incoming 'redirect', and it is used as a redirect URL link.
URI:src/main/java/com/xzjie/cms/system/web/OauthController.java
image
image
The test environment is unavailable, local debugging jumps normally
image

SSRF attacks exist on pushed images

1.The URL whitelist is not set for the remote image interface, causing the requested address to be completely controllable externally
URI:cms-boot-web/src/main/java/com/xzjie/cms/system/web/WxMaterialController.java
image
image
image
image
2.Currently, the functions of the test environment are abnormal. However, the local test shows that SSRF attacks exist on the interface
image
image
3.SSRF can expose Intranet information and even cause RCE attacks. For details, see the following documents
https://portswigger.net/web-security/ssrf

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.